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Abstract: Cloud computing is new paradigm that's driving the world of technology and serviq^pwr the 
Internet. Cloud providers facilitate individuals and businesses to use software and hard*y^/hat are 
managed by third parties at remote locations. Cloud services include online file storage, s#ci^^etworking 
sites, webmail, and online business Applications. Moving critical applications and seitsitiv^data to public 
cloud environments is of great concern for those corporations that are moving beyai^^ieir data center's 
network under their control. To alleviate these concerns, a cloud solution pmtn^fp must ensure that 
customers will continue to have the same security and privacy controls over thair^plications and services, 
provide evidence to customers that their organization are secure and they* meet their service-level 
agreements, and that they can prove compliance to auditors * 

Keywords: Cloud computing, Security, SPI model, Vulnej3t^i^fes, Threats, Countermeasures, 
regionalization, transparency. s^^J 

I. IntroductkjV ♦ 

Recent Snowden leaks aren't driving companies away^anithe cloud and its services; but the disclosures 
have made them a lot more careful and present clou^fsbviders have more to guarantee the security of the 
customer data and business. In today's world computing is the most sought after and popular 

technology. Cloud Computing enables ubiquit^is, convenient, on-demand network access to a shared pool 
of configurable computing resources (e.g., ^Storks, servers, storage, applications, and services) that can be 
rapidly provisioned and released with rafBmal management effort or service provider interaction. One of 
the most significant barriers to adqrtr^ftrW^security, followed by issues regarding compliance, privacy and 
legal matters. Because Cloud CqrnpuV^n^ represents a relatively new computing model, there is a great deal 
of uncertainty about how secu^K at all levels (e.g., network, host, application, and data levels) can be 
achieved and how applicatioB*^airity is moved to Cloud Computing. 

Security concerns relatgJ^^k areas such as external data storage, dependency on the public internet, lack 
of control, multi-ten*^mand integration with internal security Traditional security mechanisms such as 
identity, auther^c/tioVr^ind authorization are no longer enough for clouds in their current form. Security 
controls in Ck^^romputing are, for the most part, no different than security controls in any IT 
environment/feowever, because of the cloud service models employed, the operational models, and the 
technolojjjj^sed to enable cloud services, Cloud Computing may present different risks to an organization 
than trtffl^iOTial IT solutions. Unfortunately, integrating security into these solutions is often perceived as 
rnjlffr^pltrem more rigid. 

A fflreat is defined as a potential attack that may lead to a misuse of information or resources, and 
vulnerability is the flaws allow an attack to be successful. This paper describes the relationship between 
these vulnerabilities and threats; how these vulnerabilities can be exploited in order to perform an attack, 
and also present some countermeasures related to these threats which try to solve or improve the identified 
problems. 
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II Literature Survey 

2.1 Security in the SPI model [3] provides three types of services such as Software as a Service (SaaS), 
Platform as a Service (PaaS), and Infrastructure as a Service (IaaS). 



With SaaS, the burden of security lies with the cloud provider. In part, this is because of the degree of 
abstraction, the SaaS model is based on a high degree of integrated functionality with minimal customer 
control or extensibility. By contrast, the PaaS model offers greater extensibility and greater customer 
control. Largely because of the relatively lower degree of abstraction, IaaS offers greater tenant or auswrnVr 
control over security than do PaaS or SaaS [1]. 

Each cloud service model comprises its own inherent security flaws; however, they aj^p^we some 
challenges that affect all of them. These relationships and dependencies between cloud mS^tefsTnay also be 
a source of security risks. A SaaS provider may rent a development environment *PaaS provider, 
which might also rent an infrastructure from an IaaS provider. Each provider is resp^nfcpie for securing his 
own services, which may result in an inconsistent combination of security model^Jfcalso creates confusion 
over which service provider is responsible once an attack happens. 

2.2 Software-as-a-Service (SaaS) Seci 



SaaS provides application services on demand such as em; 
applications such as ERP, CRM, and SCM. SaaS users have 1^ 
fundamental delivery models in the cloud. The adoptionjV S^ai 
concerns. V^A^ 




ferencing software, and business 
Control over security among the three 
applications may raise some security 



2.3 Applic 



\ Security 



Applications are delivered via the Internet jjfit^ Web browser. However, flaws in web applications may 
itrt^jisNAttackers use the web to compromise user's computers and 



create vulnerabilities for the SaaS applicatil 



steal sensitive data. Security challenges 
Application Security Project (OWA^j 



u\aaS applications are same as web applications The Open Web 
identified the ten most critical web applications security threats. 



The applications in Sai 
characteristics: scalal 
each customer 



v/> 2.4 Multi-Tenancy 

ye grouped into maturity models that are determined by the following 
configurability via metadata, and multi-tenancy. In the first maturity model, 
vn customized instance of the software. In the second model, the vendor a 



provides differe^^iiBtances of the applications for each customer, but all instances use the same 
application cjmeVm the third maturity model multi-tenancy is added, so a single instance serves all 
customers.^KK^approach enables more efficient use of the resources but scalability is limited. Since data 
from mB&ple tenants is likely to be stored in the same database, the risk of data leakage between these 
teaSHtfi^jJhigh. Good Security policies are the need of the hour to guarantee that customer's data are kept 
sebarafe from other customers. 



2.5 Data Security 

Data security in SaaS is managed by Cloud providers. Organizational data is processed in plaintext and 
stored where the provider is responsible for data security, Data backup and sub contract. Most compliance 
standards cannot be envisioned in a world of Cloud Computing [5]. In the world of SaaS, the process of 
compliance is complex because data is located in the provider's datacenters, which may introduce 
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regulatory compliance issues such as data privacy, segregation, and security, that must be enforced by the 
provider. 

2.6 Accessibility 

Accessing applications over the internet via web browser makes access from any network device easier, 
including public computers and mobile devices. However, it also exposes the service to additional security 
risks. The Cloud Security Alliance [6] has released a document that describes the current state of mobile 
computing and the top threats in this area such as information stealing mobile malware, insecure »et*or%s 
(WiFi), vulnerabilities found in the device OS and official applications, insecure marketplacea^nd 
proximity-based hacking. 0*> * 

.Q? 

2.7 Platform-as-a-Service (PaaS) Security Issues g V 



PaaS facilitates deployment of cloud-based applications without the cost of buyirfe ;yd maintaining the 
underlying hardware and software layers [3]. As with SaaS and IaaS, PaaS depenifc^ 1 a secure and reliable 
network and secure web browser. PaaS application security comprises two scW^re layers: Security of the 
PaaS platform itself (i.e., runtime engine), and Security of customer ajjnlicanons deployed on a PaaS 
platform [1]. PaaS providers are responsible for securing the platfoftyj^pyware stack that includes the 
runtime engine that runs the customer applications. Same as SaaS, iS^Qteo brings data security issues and 
other challenges that are described as follows: 

2.8 Infrastructure-as-a-Service^\a$)Security Issues 

IaaS provides a pool of resources such as servers, ston3TO4ri e,:wor k s > and other computing resources in the 
form of virtualized systems, which are accessed thiMugrrrhe Internet. Users are entitled to run any software 
with full control and management on the resouf^^ailocated to them. With IaaS, cloud users have better 
control over the security compared to the models as long there is no security hole in the virtual 

machine monitor. They control the softwai^^nning in their virtual machines, and they are responsible to 
configure security policies correctly. Ho^efcer* the underlying compute, network, and storage infrastructure 
is controlled by cloud providers. IatfS^j^cHroers must undertake a substantial effort to secure their systems 
in order to minimize these threads th^result from creation, communication, monitoring, modification, and 
mobility [07]. /^V 

v<2T 

2.9 Shared Resource 

VMs located on th^ajteserver can share CPU, memory, I/O, and others. Sharing resources between VMs 
may decrease theVAafrity of each VM. For example, a malicious VM can infer some information about other 
VMs through^nSjed memory or other shared resources without need of compromising the hypervisor. 
Using covert^mannels, two VMs can communicate bypassing all the rules defined by the security module of 
the VMJl^^hus, a malicious Virtual Machine can monitor shared resources without being noticed by its 
VyM.V> yie attacker can infer some information about other virtual machines. 



2.13 Virtual Machine Rollback 



Virtual machines roll back to the previous states if an error happens. But rolling back in virtual machines 
may lead to security vulnerabilities that were patched or re-enable previously disabled accounts or 
passwords. One solution is to make a "copy" (snapshot) of the virtual machine, but this will propagate 
configuration errors and other vulnerabilities. 
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2.16 Analysis of Security Issues in Cloud Computing 

This section discusses security vulnerabilities and threats of Cloud Computing. For each vulnerability and 
threat, we identify what cloud service model or models are affected by these security problems. The focus is 
mainly technology-based vulnerabilities but some of the vulnerabilities that may be common to any 
organization and can show negative impact are: 



i)Lack of employee screening and poor hiring practices 2)Lack of customer background checks -Apocryphal 
accounts can let attackers perform any malicious activity without being identified 3)Lack < 
education 



III Vulnerabilities 



-Apocryphal 
: of*se*i\y 

■to' 



Cloud Computing leverages many existing technologies such as web service: 
virtualization, which contributes to the evolution of cloud environments. The] 
associated to these technologies also affects the cloud, and it can even have a 
presents an analysis of vulnerabilities in Cloud Computing. This analysis offfi 
vulnerabilities, and indicates what cloud service models (SPI) can be aff 
focus mainly on technology-based vulnerabilities; however, there are^ft, 

to any organization, but they have to be taken in consideration\^^»Fhey can negatively impact the 
security of the cloud and its underlying platform. Some of these \Ch\rabilities are the following: Lack of 
employee screening and poor hiring practices, Lack of customs background checks, Lack of security 
education. * 



^eb* browsers, and 
)iV any vulnerability 
icant impact. Table 2 
irief description of the 
h^hem. For this analysis, we 
lnerabilities that are c 



Cloud Computing leverages many existing technotages*such as web services, web browsers, and 
virtualization, which contributes to the evolution ^S^oud environments. Therefore, any vulnerability 
associated to these technologies also affects the cj^jsptand it can even have a significant impact. 

Table 1: VuWIIffamlities in cloud computing 



S.N 

0 


Vulnerability 


Description 


laye 
r 


Vi 


Insecure V 
interfaces andf^ 

apis fjy 


^^ykjhd providers offer services that can be accessed through APIs 
KjpAP, REST, or HTTP with XML) .The security of the cloud depends 
W upon the security of these interfaces . Some problems are: 
a) Weak credential b) Insufficient authorization checks c) 
Insufficient input-data validation 


SPI 


V2 


aiweaVion of 
♦Oesburces 


Inaccurate modeling of resource usage can lead to overbooking or 
over-provisioning. 


SPI 


v 3 


J 

Data-related 
vulnerabilities 


a) Data can be collocated with the data of unknown owners ( 
intruders) with a weak separation 
b) Data may be located in different jurisdictions which have different 
laws 

c) Incomplete data deletion - data cannot be completely removed 
d) Data backup done by untrusted third-party providers 

e) Information about the location of the data usually is unavailable 

or not disclosed to users. 

f) Data is often stored, processed, and transferred in clear plain text 


SPI 
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V4 


Vulnerabilities in 
Virtual Machines 


a) Possible covert channels in the collocation of VMs b) Unrestricted 
allocation and deallocation of resources with VMs [t|c) Uncontrolled 
Migration - VMs can be migrated from one server to another server 
due to fault tolerance, load balance, or hardware maintenance [7] 
d) Uncontrolled snapshots - VMs can be copied in order to provide 
flexibility [5], which may lead to data leakage) Uncontrolled rollback 
could lead to reset vulnerabilities - VMs can be backed up to a 
previous state for restoration [44], but patches applied after the 
previous state disappear 
f) VMs have IP addresses that are visible to anyone within the cloud - 
attackers can map where the target VM is located within the cloud* 
(Cloud cartography ) w 


I 

* 


V5 


Vulnerabilities in 
V.M Images 


a) Uncontrolled placement of VM images in public reposil^rJ^^ 

b) VM images are not able to be patched since they arAiormfcnt 

artifacts 


I 


V6 


Vulnerabilities in 
Hypervisors 


a) Complex hypervisor code b) Flexible configura^^SrVMs or 
hypervisors to meet organization needs ca|^^Mq)loited 


I 


V 7 


Vulnerabilities in 
Virtual Networks 


Sharing of virtual bridges by sevajcH^^ul!! machines 


I 



We infer from the above table 2 that data storage and virtualiz 
them can be more harmful. Attacks on lower layers have high. 



IV Threats in Cli 



Table 2: The following table desi 



tfHire the very critical and an attack to 
t than above layers. 



arious threats and their description 




S.N 
0 


Threats 


CO 

Description 

tA\> 


laye 
r 


Ti 


Account or service 
hijacking. ^ 


^^Scount theft can be performed by different ways such as 
2^ocial engineering and weak credentials. If an attacker gains 
^jjcess to a user's credential, he can perform malicious activities 
P such as access sensitive data, manipulate data, and redirect any 
transaction. 


SPI 


T2 


<§> 

Datasj^*gfng 


Since data cannot be completely removed from unless the device 
is destroyed, attackers may be able to recover this data. 


SPI 


T 3 


^fca»Teakage 


Data leakage happens when the data gets into the wrong hands 
when transferred, stored, audited or processed. 


SPI 




j Denial of Service 


It is possible that a malicious user will take all the possible 
resources. Thus, the system cannot satisfy any request from 
other legitimate users due to resources being unavailable. 


SPI 


T 5 


Customer-data 
manipulation 


Users attack web applications by manipulating data sent from 
their application component to the server's application [20,32]. 
For example, SQL injection, command injection, insecure direct 
object references, and cross-site scripting. 


SPI 


T6 


VM escape 


It is designed to exploit the hypervisor in order to take control of 
the underlying infrastructure. 


I 
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T 7 


VM hopping 


It happens when a VM is able to gain access to another VM (i.e. 
by exploiting some hypervisor vulnerability) 


I 


T8 


Malicious VM 
creation 


An attacker who creates a valid account can create a VM image 
containing malicious code such as a Trojan horse and store it in 
the provider repository [20]. 


I 


T 9 


migration 


Live migration of virtual machines exposes the contents of the 
VM state files to the network. An attacker can 

a) Access data illegally during migration [42] 
b) Transfer a VM to an untrusted host [44] 
c) Create and migrate several VM causing disruptions or DoS £ 


y 


Tio 


Sniffing/Spoofing 
virtual networks 


A malicious VM can listen to the virtual network or evenx^Tl 
ARP spoofing to redirect packets from/ to othar. ^^^^ 


1 



V Countermeasures 



3^ 



5.1 Countermeasures for T01: Account or Service r/^rjking 

Identity and access management guidance: Cloud Security AHj3^N^^>A), a non-profit organization 
that promotes the use of best practices in order to provide security /rnspud environments and identity and 
access reporting. Qj^ 

Dynamic credentials: The dynamic credential changes its^^ue once a user changes its location or when 
he has exchanged a certain number of data packets. 



5.2 Countermeasu^®4fc>r T03: Data Leakage 

A. Fragmentation-redundancy-scatteriq£%FRS) technique: This technique aims to provide intrusion 
tolerance and, in consequence, secure stafl%2lk This technique consists in first breaking down sensitive data 
into insignificant fragments, so arj^fttgaalnt does not have any significant information by itself. Then, 
fragments are scattered in a redundaS^tshion across different sites of the distributed system. 

B. Digital signatures: 

being transferred over t 
be used to protect dat, 

C. Homomorp^iAeyryption: Three important operations for cloud data are transfer, store, and process. 
Normally enci^^p may be used for to and fro transfer of data .The method is based on the application of 
fully homorr^^hic encryption to the security of clouds. Fully homomorphic encryption allows performing 
arbitrary <s^rputation on cipher texts without being decrypted. Current homomorphic encryption schemes 

ated number of homomorphic operations such as addition and multiplication but real-world 
plications requires a huge processing power which may impact on user response time and power 
hption. 




to secure data using digital signature with RSA algorithm while data is 
let. They claimed that RSA is the most recognizable algorithm, and it can 
id environments. 



D. Encryption: Encryption techniques have been used for long time to secure sensitive data. Sending or 
storing encrypted data in the cloud will ensure that data is secure. However, it is true assuming that the 
encryption algorithms are strong. There are some well-known encryption schemes such as AES (Advanced 
Encryption Standard). Also, SSL technology can be used to protect data while it is in transit. Moreover, [9] 
describes that encryption can be used to stop side channel attacks on cloud storage de-duplication, but it 
may lead to offline dictionary attacks reveling personal keys. 
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5.3 Countermeasures for T05: customer data manipulation : Web application scanners: Web 

application scanners is a program which scans web applications through the web front-end in order to 
identify security vulnerabilities such as web application firewall which routes all web traffic through the 
web application firewall which inspects specific threats. 

5.4 Countermeasures for T06: VM Escape 

A. Hyper Safe : Hyper Safe's goal is to protect type I hypervisors using two techniques: non-by by passable 
memory lockdown which protects write-protected memory pages from being modified, and r«st< 
pointed indexing that converts control data into pointer indexes. 

B. Trusted cloud computing platform:TCCP enables providers to offer closed bfl^»ecution 

environments, and allows users to determine if the environment is secure before launohing^nEfir VMs. The 
TCCP adds two fundamental elements: a trusted virtual machine monitors (T^TOMVand a trusted 
coordinator (TC). The TC manages a set of trusted nodes that run TVMMs, and maintained but a 
trusted third party. The TC participates in the process of launching or migrating .^O^hich verifies that a 
VM is running in a trusted platform. ^fo*^ 

5.5 Countermeasures for T08: malicious virtual machine creaticrt^Q^age: A virtual machine image 
management system approach includes the following security feafO^Ngfcess control framework, image 
filters, a provenance tracking, and repository maintenance serwca. However, the limitation of this 
approach is that filters may not be able to scan all malware or re^^je all the sensitive data from the images. 
Also, running these filters may raise privacy concerns becaus^the^ave access to the content of the images 
which can contain customer's confidential data. 



Cloud Computing leverages many technologies, it also inherits their security issues. Traditional web 
applications, data hosting, and virtualizati^m\ave been looked over, but some of the solutions offered are 
immature or inexistent. We have prese|(f^^ecurity issues for cloud models: IaaS, PaaS, and IaaS, which 
vary depending on the model. As^a£crfe€d in this paper, storage, virtualization, and networks are the 
biggest security concerns in C^oudN^OTnputing. Virtualization which allows multiple users to share a 
physical server is one of the makJrVtoncerns for cloud users. 

New security techniquesp^l^*^eded as well as redesigned traditional solutions that can work with cloud 
architectures. Traditiow^jgeurity mechanisms may not work well in cloud environments because it is a 
complex architectuo^ly^is composed of a combination of different technologies. 

\0 

Despite some^epofts of slowing sales of cloud services by U.S. vendors to overseas companies, experts now 
expect thaktJ^Nfcnowden leaks will have little effect on long-term sales. Analysis say IT security officials are 
tral key areas, such as data encryption, key management and data ownership, regionalization, 
feed for increased government transparency, to improve cloud security. Encryption is only as 
s its key management system. US data leaks could also accelerate regionalization of cloud services, 
residency requirements is becoming the order of the day 
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